$ rpki-client -vvf rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa File: EABCE94C932111EE8C70453EC4F9AE02.roa (raw, json) Hash identifier: oQXY2oaPmh/e06H6CcARZA2+TLztnodxvYW6Bm4bXO0= Subject key identifier: BD:EC:FF:D5:BD:87:D2:B0:FA:48:DD:96:47:C3:1D:B0:FA:B2:CE:54 Certificate issuer: /CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Certificate serial: 0830 Authority key identifier: 48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa Signing time: Fri 12 Jul 2024 21:40:00 +0000 ROA not before: Fri 12 Jul 2024 21:39:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17894 IP address blocks: 202.52.160.0/20 maxlen: 20 202.52.160.0/23 maxlen: 23 202.95.224.0/24 maxlen: 24 202.95.225.0/24 maxlen: 24 202.95.226.0/24 maxlen: 24 202.95.227.0/24 maxlen: 24 202.95.228.0/24 maxlen: 24 202.95.229.0/24 maxlen: 24 202.95.230.0/24 maxlen: 24 202.95.231.0/24 maxlen: 24 202.95.232.0/24 maxlen: 24 202.95.235.0/24 maxlen: 24 202.95.236.0/24 maxlen: 24 202.95.237.0/24 maxlen: 24 202.95.238.0/24 maxlen: 24 202.95.239.0/24 maxlen: 24 202.126.32.0/20 maxlen: 24 2401:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E563F/serialNumber=482016E56A0241FD2D35BFD77BC972E673CE9F2F Validity Not Before: Jul 12 21:39:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6691a2af-417c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:94:f6:a1:91:4a:d2:90:c1:9e:1b:cf:da:ec: 74:1d:93:80:f3:59:7d:61:86:7a:0e:46:69:01:c9: c4:6b:86:07:67:9b:d5:e1:4f:f2:54:56:d5:b6:97: 1c:07:f7:bb:88:81:57:3b:9b:74:fd:54:74:f7:81: 32:65:3c:39:ff:b9:9d:4b:60:e3:a2:9e:91:55:66: 88:b3:b0:10:90:1a:c5:ae:3b:ea:ed:0a:38:49:f2: b6:50:db:69:43:ba:c0:65:eb:6a:8e:25:1c:54:77: 3a:85:ff:d4:fd:54:cb:35:ae:82:3a:f8:40:d4:be: 41:a7:6a:93:6e:8f:56:b6:9b:86:9b:89:fa:ac:a8: bc:b5:11:90:cd:cf:f7:1b:f1:ee:2e:14:dd:55:5e: c5:58:41:1e:b3:27:98:fb:38:00:ba:09:26:b6:83: 1f:f0:05:8b:9c:12:32:9b:27:5c:18:52:7e:d7:f1: fd:c8:20:a9:ce:a4:da:a6:98:90:f6:aa:aa:d4:3c: 2f:79:1f:f7:e0:92:7c:7e:b5:55:b0:81:48:7c:a9: 59:01:ef:98:de:7e:80:03:bb:bf:6d:e3:ac:f2:f4: 09:26:3c:ef:1b:cb:c9:c4:27:af:e6:2e:eb:29:7e: d0:99:ad:1a:e8:9b:30:dd:01:2b:b6:5b:f0:d6:f2: 97:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EC:FF:D5:BD:87:D2:B0:FA:48:DD:96:47:C3:1D:B0:FA:B2:CE:54 X509v3 Authority Key Identifier: keyid:48:20:16:E5:6A:02:41:FD:2D:35:BF:D7:7B:C9:72:E6:73:CE:9F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/SCAW5WoCQf0tNb_Xe8ly5nPOny8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SCAW5WoCQf0tNb_Xe8ly5nPOny8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E563F/0AB777DAB6A811EAAEE14F7BC4F9AE02/EABCE94C932111EE8C70453EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.52.160.0/20 202.95.224.0-202.95.232.255 202.95.235.0-202.95.239.255 202.126.32.0/20 IPv6: 2401:b900::/32 Signature Algorithm: sha256WithRSAEncryption 24:14:73:9c:28:1c:c1:0c:2c:c7:38:15:ec:66:a6:26:a2:09: 3c:66:98:ab:44:18:a7:5f:f6:c0:23:05:d8:5e:1e:8d:36:8e: 6a:6d:07:55:ac:59:f5:09:63:4e:9b:1e:db:01:b6:7e:7a:9f: 46:f1:dd:22:79:c4:d3:d3:68:e0:38:c9:9e:c2:b8:bd:83:84: ea:16:74:d1:c4:69:06:e8:97:d6:17:1b:34:b8:c2:09:32:8b: 71:42:91:b0:9b:d2:9c:b1:b5:7d:d8:97:54:64:9a:37:98:0d: 9d:33:16:98:c3:d8:bf:c1:38:dd:4e:27:9f:da:f2:a9:fe:a7: 15:38:ae:8a:3a:77:06:ed:b2:ac:99:33:79:dd:1a:b8:c6:2b: 39:b6:7b:fc:67:05:c9:b9:87:07:2f:d3:9f:49:59:22:cd:70: cb:3e:8d:7c:d6:89:f5:5f:74:12:8c:6d:65:c2:22:fb:32:04: ce:cf:50:3a:62:c5:13:c0:76:f7:c0:ee:3b:8d:c3:6b:de:92: 79:29:33:16:93:b3:ad:d8:6d:51:e2:20:6d:a1:82:1b:2b:36: a0:c7:33:64:ee:1e:92:a8:ad:22:89:11:1f:f7:40:fc:62:fc: 40:31:41:e1:7f:7d:4f:f5:00:49:06:47:1f:2d:e0:a4:44:2b: 09:93:47:30 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2M0YxMTAvBgNVBAUTKDQ4MjAxNkU1NkEwMjQxRkQyRDM1QkZENzdCQzk3MkU2 NzNDRTlGMkYwHhcNMjQwNzEyMjEzOTU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYTJhZi00MTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pT2oZFK0pDBnhvP2ux0HZOA81l9YYZ6DkZpAcnEa4YHZ5vV4U/yVFbVtpcc B/e7iIFXO5t0/VR094EyZTw5/7mdS2Djop6RVWaIs7AQkBrFrjvq7Qo4SfK2UNtp Q7rAZetqjiUcVHc6hf/U/VTLNa6COvhA1L5Bp2qTbo9WtpuGm4n6rKi8tRGQzc/3 G/HuLhTdVV7FWEEesyeY+zgAugkmtoMf8AWLnBIymydcGFJ+1/H9yCCpzqTappiQ 9qqq1DwveR/34JJ8frVVsIFIfKlZAe+Y3n6AA7u/beOs8vQJJjzvG8vJxCev5i7r KX7Qma0a6Jsw3QErtlvw1vKXJwIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFL3s/9W9 h9Kw+kjdlkfDHbD6ss5UMB8GA1UdIwQYMBaAFEggFuVqAkH9LTW/13vJcuZzzp8v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTYzRi8wQUI3NzdEQUI2 QTgxMUVBQUVFMTRGN0JDNEY5QUUwMi9TQ0FXNVdvQ1FmMHROYl9YZThseTVuUE9u eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDQVc1V29DUWYwdE5iX1hlOGx5NW5QT255OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU2M0YvMEFCNzc3REFCNkE4MTFFQUFFRTE0RjdCQzRGOUFFMDIvRUFCQ0U5NEM5 MzIxMTFFRThDNzA0NTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MC4EAgABMCgDBATKNKAwDAMEBcpf4AMEAMpf6DAMAwQAyl/rAwQEyl/gAwQE yn4gMA0EAgACMAcDBQAkAbkAMA0GCSqGSIb3DQEBCwUAA4IBAQAkFHOcKBzBDCzH OBXsZqYmogk8ZpirRBinX/bAIwXYXh6NNo5qbQdVrFn1CWNOmx7bAbZ+ep9G8d0i ecTT02jgOMmewri9g4TqFnTRxGkG6JfWFxs0uMIJMotxQpGwm9KcsbV92JdUZJo3 mA2dMxaYw9i/wTjdTief2vKp/qcVOK6KOncG7bKsmTN53Rq4xis5tnv8ZwXJuYcH L9OfSVkizXDLPo181on1X3QSjG1lwiL7MgTOz1A6YsUTwHb3wO47jcNr3pJ5KTMW k7Ot2G1R4iBtoYIbKzagxzNk7h6SqK0iiREf90D8YvxAMUHhf31P9QBJBkcfLeCk RCsJk0cw -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org